Part IX Managing the Oracle Access Management OAuth Service and OpenIDConnect

The Oracle Access Management OAuth Service allows organizations to implement the open standard OAuth 2.0 Web authorization protocol in an Access Manager environment. OAuth enables a client to access Oracle Access Manager (OAM) protected resources that belong to another user (that is, the resource owner). OpenIDConnect implements authentication as an extension to the OAuth 2.0 authorization process. It provides easily consumable ID Tokens that are obtained by Clients using OAuth 2.0 flows.

OpenIDConnect provides an identity layer on top of OAuth 2.0 protocol. It allows clients to:

• Verify the identity of the end-user based on the authentication performed by an Authorization Server.

• Obtain profile information in an interoperable REST-like manner.

Part IX contains the following chapters:

• Understanding OAuth Services

• Configuring OAuth Services in 12c

• Understanding OpenIDConnect

• OIDC Client Integrations with Social Identity Providers

See Also:

• http://openid.net/connect/

• http://openid.net/specs/openid-connect-core-1_0.html